§ DORA BRIEFING

DORA Compliance Deadline: 17 January 2024

3 obligations from DORA fell due on 17 January 2024. In force since this date — see what should already be in place.

Summary

3 DORA obligations carry 17 January 2024 as their deadline. This page lists them grouped by sector with article references and the action each obligation requires — extracted verbatim from the Regulation.

The deadline has passed (865 days ago). The obligations listed below should already be in force for any organisation in scope. Use the page as an audit checklist.

Who this applies to
Any organisation in scope of DORA that has obligations dated 17 January 2024.
Compliance deadline
17 January 2024 — already in force.
§ Detail

In depth

Obligations due by this deadline

For all in-scope entities

For financial services

Checklist — what you need to have done

What should already be in place — audit framing

17 January 2024 is 865 days behind us. The obligations on this page have been in force since then; treat any gap as an audit finding, not a planning question. The expected baseline under DORA:

If any of these are missing, the right next step is a gap assessment plus a documented remediation plan — not a re-design of the underlying programme.

Related Fontvera pages

Check your full compliance exposure with the 5-minute Fontvera diagnostic →

§ What Fontvera found

Documents in our corpus

edpb EU Fetched 2026-05
EDPB-EDPS Joint Opinion 02/2023 on the Proposal for a Regulation of the European Parliament and of the Council on the establishment of the digital euro
edpb EU Fetched 2026-05
EDPB-EDPS Joint opinion 2/2026 on the Proposal for a Regulation as regards the simplification of the digital legislative framework (Digital Omnibus)
eurlex EU Fetched 2026-04
Commission Delegated Regulation (EU) 2025/420 of 16 December 2024 supplementing Regulation (EU) 2022/2554 of the European Parliament and of the Council with regard to regulatory technical standards to specify the criteria for determining the composition of the joint examination team ensuring a balanced participation of staff members from the ESAs and from the relevant competent authorities, their designation, tasks and working arrangements
eurlex EU Fetched 2026-04
Commission Implementing Regulation (EU) 2025/302 of 23 October 2024 laying down implementing technical standards for the application of Regulation (EU) 2022/2554 of the European Parliament and of the Council with regard to the standard forms, templates, and procedures for financial entities to report a major ICT-related incident and to notify a significant cyber threat
eurlex EU Fetched 2026-04
Commission Delegated Regulation (EU) 2025/301 of 23 October 2024 supplementing Regulation (EU) 2022/2554 of the European Parliament and of the Council with regard to regulatory technical standards specifying the content and time limits for the initial notification of, and intermediate and final report on, major ICT-related incidents, and the content of the voluntary notification for significant cyber threats
eurlex EU Fetched 2026-04
Commission Delegated Regulation (EU) 2025/295 of 24 October 2024 supplementing Regulation (EU) 2022/2554 of the European Parliament and of the Council with regard to regulatory technical standards on harmonisation of conditions enabling the conduct of the oversight activities
eurlex EU Fetched 2026-04
Commission Implementing Regulation (EU) 2024/2956 of 29 November 2024 laying down implementing technical standards for the application of Regulation (EU) 2022/2554 of the European Parliament and of the Council with regard to standard templates for the register of information
eurlex EU Fetched 2026-04
Regulation (EU) 2022/2554 of the European Parliament and of the Council of 14 December 2022 on digital operational resilience for the financial sector and amending Regulations (EC) No 1060/2009, (EU) No 648/2012, (EU) No 600/2014, (EU) No 909/2014 and (EU) 2016/1011 (Text with EEA relevance)
§ Cross-references

Related Fontvera intelligence

COMPARISON
AI Act vs DORA: Financial Services AI
COMPARISON
Data Act vs DORA comparison
COMPARISON
Data Governance Act vs DORA comparison
COMPARISON
DMA vs DORA comparison
COMPARISON
DORA vs AI Act: Where Financial AI Compliance Collides
Need a cross-border briefing on this?
Search Fontvera ↵ Run the AI Act diagnostic
AI Act enforcement
63 days
until 2026-08-02, when most AI Act provisions begin to apply.
Intelligence · About · Pricing · Privacy · Terms
100% European infrastructure